US-CERT – Hackers Could Exploit File Sharing Software

The Department of Homeland Security's Computer Emergency Readiness Team, US-CERT, has released a warning on a file sharing software, saying that it is a cause of computer security risks.

As per the experts, file sharing employs the technology, which permits users to exchange files on their individual systems. P2P applications are generally used to share music files and this is the most commonly used file sharing technology.

The US-CERT researchers state that while using P2P (Peer-to-Peer), it is very difficult to check the reliability of file source. Hence, P2P is generally used by attackers to spread malevolent codes, viruses, Trojan horses, spyware and worms into users' files.

Moreover, a large number of P2P users don't scan their downloaded files before allowing others to upload them. They usually employ the program defaults and share their download fold, which helps in the propagation of malicious content unknowingly.

Another method used by individual to distribute harmful content is "Impersonate" - a P2P application download website. As the large volume of software downloads occurs, presenting one's websites as the download mirror might deceive some users into installing a malevolent program with thinking that they were downloading P2P software.

Apart from this, p2p software itself is used for the distribution of malicious software via P2P. The installation of P2P software could lead to malware download.

Security experts have warned that the usage of P2P results into giving access to users personal details. No matter it makes directories accessible or users share their personal information with reliable people or organizations, some people could access the information without authority, which includes - medial/financial data, sensitive corporate information and personal documents. Once the information is accessed by unauthorized people, it would be very difficult to find that person.

In order to deal with this problem, security experts have suggested that people should install antivirus software on their systems. antivirus protects the system from the most common viruses. Nevertheless, cyber criminals have been continuously creating new viruses that make it necessary to keep the updated antivirus.

Besides, users should install or activate a firewall. Firewalls give protection against different types of infection by restraining the malicious traffic before it could enter the system. Some operating systems include a firewall; however, users make sure that they are activated.

Related article: US Passes Baton to Asia in Spam Relay

» SPAMfighter News - 6/2/2010